UPDATE: There is new information on this issue that is available: http://blog.miner.tweakly.net/post/174319346538/security-breach-updates


Hello everyone, this morning we were notified by many users that there seems to be an issue with their account balances. Some say that their balance has been reset or greatly lowered, others say it says their email doesn't exist in the system at all. We're trying to find the source of the problem and while this happens there's nothing we can do. Our logs show no record of anyone ever mining, which is worrying for us as we may have been hacked. But right now we're hoping it was just a server issue.


We have temporarily disabled all functions related to checking your balance to reduce the load on the server (in case that is the cause of the issue) and are testing possible solutions. We are hoping to be able to restore everyone's balance within the next week but are not sure yet. We also have a procedure for this exact kind of issue whether the balances can be restored or not, so everything should be okay. You can read about this procedure at the end of the article.


Either way, we're doing the best we can to fix this, so please do not send abusive emails to our staff or go around spreading rumors. As soon as any new information is available we will update you here. If you have any information about the issue (such as a specific time it occurred if you were checking your balance, or anything going on at the time) please contact support@tweakly.net or create a support ticket. Information like that could help us identify the issue and resolve it sooner.


We have not done this intentionally and we don't want to deal with it any more than you do. Imagine the hundreds of emails we have to respond to from people saying "your **** ******* app is such a scam, reporting you to EVERYONE you **** devs" - we would really appreciate if you could just let us figure this out internally. We will do our best to get everyone's balances back.




We have 2 procedures for these kinds of issues. First, a procedure to follow based on how the issue occured. Second, a procedure to follow based on the result of the issue. Both procedures will be merged so we are able to do the most appropriate action. You can read a general idea of the procedures below:


If the issue is due to a hack: We will shut down the app for a few weeks while we determine how the hack was done and attempt to improve our security to prevent the issue from happening again. The user that caused the issue will be banned and we will notify the appropriate companies and authorities (hacks like this are illegal in most countries)


If the issue is due to a server bug: We will keep mining enabled but disable payments and balance checking (like we have now) while we work with other companies to try and understand what caused the bug.


AND


If balances can be restored: We will keep balance checking disabled until all user balances are available again. Then, the app will continue to function as normal with all user balances restored. We will keep the exchange rate the same, or the equivalent to what it would be normally based on our earnings for when this happens. We will monitor user balances closely and if everything remains okay the app should be back to normal very quickly


If balances cannot be restored: Since all users had different amounts of Satoshi it would be unfair to provide everyone using the app (both people who mined $20 and people who mined $0.01) a flat rate such as $0.10 for every user. Instead, on the day of our relaunch (when the application becomes available again) we will increase the hashes to satoshi rate dramatically until the equivalent earnings that people mined before have been paid out.